All three blades (Threat Emulation, Threat Extraction and Anti-Spam ) are enabled, along with a few others. I've activated MTA as there was the possibility of timeouts on the mail servers without it as the Threat Extraction and Threat Emulation blades would eventually cause that,
Allow me to dive in a little bit on your sentence regarding Anti Spam, as I would like to understand it.
Disabling Anti Spam would certainly eliminate false positives, along with false negatives.
Or, are you saying that with the other blades enabled, the Anti Spam engine would not be required at all?